LdapBundle icon indicating copy to clipboard operation
LdapBundle copied to clipboard
verified publisher icon BorisMorel

Redirect-loop when updating user from LDAP

Open Mika56 opened this issue 11 years ago • 1 comments

Hi,

I'm using this bundle for authentification and it works pretty well. However, I've discovered a minor bug: when a user is logged in, and I update it's fields in the database, the user gets a redirect-loop on whatever action he does.

It seems that the problem is with access_control: when the user is updated, he loses one of the following roles : IS_AUTHENTICATED_ANONYMOUSLY, IS_AUTHENTICATED_FULLY. Because of this, the user gets redirect to login, but, as he doesn't have the IS_AUTHENTICATED_ANONYMOUSLY role, he gets redirected to the homepage... Where, as he doesn't have the IS_AUTHENTICATED_FULLY role, gets redirected to login, and so on...

So, if I'm correct, there is a problem with roles, right?

Mika56 avatar Mar 20 '14 23:03 Mika56

Glad you post this. Im having the same issue. Removing the access control works.

With access control set to IS_AUTHENTICATED_FULLY isnt working. App/dev/log shows that the user is authed correctly, then the correct route is loaded. After that, the user session is reloaded, and cant access the route until gets redirected to login.

I thought my config was wrong after i spent 3 days googling without luck.

El mar 20, 2014 8:13 p.m., "Mikael Peigney" [email protected] escribió:

Hi,

I'm using this bundle for authentification and it works pretty well. However, I've discovered a minor bug: when a user is logged in, and I update it's fields in the database, the user gets a redirect-loop on whatever action he does.

It seems that the problem is with access_control: when the user is updated, he loses one of the following roles : IS_AUTHENTICATED_ANONYMOUSLY, IS_AUTHENTICATED_FULLY. Because of this, the user gets redirect to login, but, as he doesn't have the IS_AUTHENTICATED_ANONYMOUSLY role, he gets redirected to the homepage... Where, as he doesn't have the IS_AUTHENTICATED_FULLY role, gets redirected to login, and so on...

So, if I'm correct, there is a problem with roles, right?

Reply to this email directly or view it on GitHubhttps://github.com/BorisMorel/LdapBundle/issues/108 .

gentunian avatar Mar 21 '14 00:03 gentunian